LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Thursday, July 10th, 2014

    Time Event
    1:36a
    [$] LWN.net Weekly Edition for July 10, 2014
    The LWN.net Weekly Edition for July 10, 2014 is available.
    4:26p
    Security updates for Thursday

    CentOS has updated lzo (C7: denial of service/possible code execution), samba (C7: three vulnerabilities), samba, samba3x (C6; C5: two vulnerabilities), and tomcat6 (C6: multiple vulnerabilities).

    Debian has updated phpmyadmin (multiple vulnerabilities).

    Mageia has updated flash-player-plugin (multiple vulnerabilities).

    Mandriva has updated gd (BS1.0: denial of service), liblzo (BS1.0: denial of service/possible code execution), and python (BS1.0: information leak).

    Oracle has updated samba, samba3x (OL6; OL5: two vulnerabilities) and tomcat6 (OL6: multiple vulnerabilities).

    Red Hat has updated flash-plugin (RHEL5&6: multiple vulnerabilities), lzo (RHEL6&7: denial of service/possible code execution), samba (RHEL7: three vulnerabilities), samba, samba3x (RHEL5&6: two vulnerabilities), and tomcat6 (RHEL6: multiple vulnerabilities).

    Scientific Linux has updated lzo (SL6: denial of service/possible code execution), samba and samba3x (SL5&6: two vulnerabilities), and tomcat6 (SL6: multiple vulnerabilities).

    Ubuntu has updated php5 (multiple vulnerabilities).

    10:57p
    Boyer: At the playground
    Fedora kernel team member Josh Boyer, writes about a Fedora kernel-playground Copr (Cool Other Project Repository) on his blog. The idea is to provide an unsupported kernel that has some new features for those who want to help develop and test them.
    "OK, now that we have that out of the way, let's talk about what is actually in kernel-playground. At the moment there are two additions on top of the standard rawhide kernel; overlayfs (v22) and kdbus.

    Overlayfs is one of the top competing "union" filesystems out there, and has actually been posted for review for the past few releases. It has the best chance of landing upstream sometime this decade, and there has been interest in it for quite a while. I believe things like Docker would also be able to make use of it as a backend. I'll track upstream submissions and update accordingly.

    kdbus is of course the thing that Lennart Poettering and Kay Sievers have been talking about at various conferences for a while now. It is the in-kernel d-bus replacement. It has not been submitted for upstream review yet, but systemd already has support for it and things seem to be progressing well there.    "
    11:43p
    Day: Sandboxed applications for GNOME
    In the first of a two-part series, GNOME contributor Allan Day looks at sandboxed applications for the GNOME desktop. In this installment, he looks at the benefits of application sandboxes from a couple of different angles. "Security and privacy, I think, are core beliefs for Free Software. Users should be able to trust us to have their interests at heart, and should be able to have more faith in our products than proprietary alternatives. Ironically, though, the Free Software desktop world hasn’t done a great job at security. It is actually pretty scary what a malicious desktop application could do if it wants to. We rely on transparency and good faith to ensure that applications do not infringe on user privacy, rather than robust technical architecture."

    << Previous Day 2014/07/10
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org